Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3234203d3e20313335343838.roa
File: 3130332e39352e382e302f32322d3234203d3e20313335343838.roa (raw, json)
Hash identifier: G6R8teZQJiLawV1iAfJhMevaXK6Ua9dGa4wiljTBcvo=
Subject key identifier: 4D:7A:63:61:32:A7:32:5D:56:D5:FA:4A:9C:A9:CB:5A:0A:28:80:C5
Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2
Certificate serial: 371FF8FC0F43AD7028655346CD5E002E3C9AA858
Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3234203d3e20313335343838.roa
Signing time: Tue 26 Mar 2024 11:00:00 +0000
ROA not before: Tue 26 Mar 2024 10:55:00 +0000
ROA not after: Tue 25 Mar 2025 11:00:00 +0000
asID: 135488
IP address blocks: 103.95.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 05:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:1f:f8:fc:0f:43:ad:70:28:65:53:46:cd:5e:00:2e:3c:9a:a8:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2
Validity
Not Before: Mar 26 10:55:00 2024 GMT
Not After : Mar 25 11:00:00 2025 GMT
Subject: CN=4D7A636132A7325D56D5FA4A9CA9CB5A0A2880C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:df:2c:04:2c:fc:6b:24:e7:d7:77:0f:b8:03:
a9:73:56:21:b6:ff:57:33:b2:1f:3e:01:a7:c3:ce:
fd:bd:d9:47:ea:cf:97:61:e6:db:7b:a4:1f:16:c1:
3b:df:59:35:fb:2c:dd:25:67:c6:d0:ca:87:04:ad:
7c:2a:c9:a3:42:9e:7a:71:ce:40:11:21:4e:a9:ed:
0c:3f:07:44:54:d3:0b:be:15:30:37:c5:bb:56:60:
c4:39:1d:73:c7:7b:ec:c7:73:f2:6f:f6:0d:0e:8f:
c5:a2:d5:c5:1c:ad:d1:17:5f:55:f6:fd:8c:e2:0a:
54:2c:8c:d6:29:1a:24:08:76:6f:c4:89:ac:dc:e0:
f8:4b:d9:b3:fc:40:32:21:fd:0d:87:87:18:be:0a:
d1:2b:c7:e1:c5:01:31:af:af:31:4f:4c:85:14:16:
18:c8:e7:6a:91:0c:35:2b:d6:24:e0:b8:7c:d5:01:
2f:f3:28:c8:43:87:7b:3b:7c:cd:eb:2f:7f:cb:5d:
61:0c:71:6c:3c:47:8a:68:d4:7e:c5:54:9e:f9:d2:
10:ec:d6:19:1b:47:6d:a1:50:a9:f3:b6:a2:82:64:
31:f7:df:d9:bf:98:d7:76:dc:fd:b1:d9:61:f1:62:
67:80:fd:a0:81:20:4d:cf:61:6e:48:62:cc:4e:47:
65:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7A:63:61:32:A7:32:5D:56:D5:FA:4A:9C:A9:CB:5A:0A:28:80:C5
X509v3 Authority Key Identifier:
keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3234203d3e20313335343838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.8.0/22
Signature Algorithm: sha256WithRSAEncryption
43:72:d8:30:01:3a:d7:8f:80:91:1a:36:9e:85:ae:7f:9b:ec:
ad:57:2c:be:d6:0c:ca:60:75:fa:ef:0e:8f:3b:06:43:0f:10:
a7:8f:9c:76:50:2e:63:b8:9f:8d:64:e6:cc:36:94:1b:18:97:
67:4d:7d:fc:7b:43:4d:cf:d6:7f:d1:f9:a7:59:2b:03:1f:01:
ae:8d:af:a4:af:90:89:fd:76:13:ea:f0:d2:f1:8e:00:fd:0c:
c0:df:3d:64:98:df:19:67:c0:e9:1c:f1:eb:a4:c5:fb:35:80:
29:93:ac:e1:54:4a:4f:24:88:fb:91:4f:4e:ff:33:21:b9:9b:
0d:76:91:ad:70:c4:a2:c1:54:04:aa:24:64:83:ee:dc:d2:ff:
28:22:23:21:fe:bb:aa:d0:59:0f:f0:68:c4:80:c1:32:4e:ca:
05:48:e3:92:57:0d:1a:ed:c2:72:ae:12:65:29:33:0a:24:b6:
e8:2c:84:81:9b:c0:e3:c9:c5:f2:c3:b5:a1:38:73:cf:8a:9d:
5c:7d:7d:b6:ab:12:1d:ab:2b:89:c8:de:2d:47:77:8f:4a:f1:
f6:9c:79:c6:93:76:79:10:6c:c7:4b:9c:6d:46:50:80:21:4f:
a4:73:e3:b9:b8:8c:a0:57:d7:12:2e:8e:3f:34:2d:a6:fe:97:
18:b5:10:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org